Lines Matching defs:rules

284 MTX_SYSINIT(pf_unlnkdrules_mtx, &pf_unlnkdrules_mtx, "pf unlinked rules",
1281 	/* Unlinked, but may be referenced rules. */
2540 				 * - states and src nodes reference rules
2541 				 * - states and rules reference kifs
2564 	 * To cleanse up all kifs and rules we need
2580 	 * Now all kifs & rules should be unreferenced,
2847 	 * Do naive mark-and-sweep garbage collecting of old rules.
3062 pf_calc_skip_steps(struct pf_krulequeue *rules)
3067 	cur = TAILQ_FIRST(rules);
4605 	*r = TAILQ_FIRST((*rs)->rules[n].active.ptr);
4642 				*r = TAILQ_FIRST((*rs)->rules[n].active.ptr);
4707 	*r = TAILQ_FIRST((*rs)->active.rules);
4744 				*r = TAILQ_FIRST((*rs)->active.rules);
4824 	 * Modern rules use the same flags in rules as they do in states.
4830 	 * Old-style scrub rules have different flags which need to be translated.
5161 	struct pf_keth_ruleq *rules;
5192 	rules = ck_pr_load_ptr(&ruleset->active.rules);
5193 	r = TAILQ_FIRST(rules);
5526 	r = TAILQ_FIRST(pf_main_ruleset.rules[PF_RULESET_FILTER].active.ptr);
6066 	if (pd->flags & PFDESC_TCP_NORM) /* Set by old-style scrub rules */
6284 	 * (removing nat/rdr rules, moving it into regular pf rules.)
6285 	 * It also moves NAT processing to be done after normal rules evaluation
6286 	 * whereas in FreeBSD that's done before rules processing.
6289 	 * before rules processing.